Comments on: DBAs are not the enemy, but they too need watching http://www.slaviks-blog.com/2007/07/05/dbas-are-not-the-enemy-but-they-too-need-watching/ Slavik's Blog Mon, 08 Mar 2010 10:21:01 -0800 http://wordpress.org/?v=2.9.2 hourly 1 By: Slavik http://www.slaviks-blog.com/2007/07/05/dbas-are-not-the-enemy-but-they-too-need-watching/comment-page-1/#comment-138 Slavik Mon, 20 Aug 2007 12:15:42 +0000 http://www.slaviks-blog.com/2007/07/05/dbas-are-not-the-enemy-but-they-too-need-watching/#comment-138 Thanks Randy. My colleague Rani Osnat also highlighted this issue in a recent <a href="http://www.itbusinessedge.com/item/?ci=31053" rel="nofollow">interview</a> Thanks Randy. My colleague Rani Osnat also highlighted this issue in a recent interview

]]> By: Randy http://www.slaviks-blog.com/2007/07/05/dbas-are-not-the-enemy-but-they-too-need-watching/comment-page-1/#comment-136 Randy Fri, 17 Aug 2007 20:24:28 +0000 http://www.slaviks-blog.com/2007/07/05/dbas-are-not-the-enemy-but-they-too-need-watching/#comment-136 I am in total agreement with you about the lack of emphasis being placed on database security. When a security breach is publicized, it's usually not because someone infiltrated a network, or hacked a server password. It's because someone got access to information (usually stored in a database). Database security should be the inner ring of a multiple-layered security strategy involving technology solutions and appropriate policies/procedures. Database security should be a partnership between DBAs and Information Security. Having been a DBA for over a decade before moving into database security, I have seen that it's a balancing act between administration and security. I am in total agreement with you about the lack of emphasis being placed on database security. When a security breach is publicized, it’s usually not because someone infiltrated a network, or hacked a server password. It’s because someone got access to information (usually stored in a database). Database security should be the inner ring of a multiple-layered security strategy involving technology solutions and appropriate policies/procedures.

Database security should be a partnership between DBAs and Information Security. Having been a DBA for over a decade before moving into database security, I have seen that it’s a balancing act between administration and security.

]]> By: Slavik http://www.slaviks-blog.com/2007/07/05/dbas-are-not-the-enemy-but-they-too-need-watching/comment-page-1/#comment-133 Slavik Tue, 31 Jul 2007 10:26:11 +0000 http://www.slaviks-blog.com/2007/07/05/dbas-are-not-the-enemy-but-they-too-need-watching/#comment-133 Ahem... make that 8.5 million records at Fidelity National Information Services. They recently filed a <a href="http://fraudwar.blogspot.com/2007/07/certegy-reveals-their-data-breach-is.html" title="Cetergy reveals their data breach is a lot larger than originally reported" rel="nofollow">report with the SEC</a> Ahem… make that 8.5 million records at Fidelity National Information Services. They recently filed a report with the SEC

]]>